Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-922

CWE-922

Insecure Storage of Sensitive Information

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

373 vulnerabilities with CWE-922

CVE-2021-36127 MEDIUM

MediaWiki < 1.36 - Insecure Storage of Sensitive Information via Special:GlobalUserRights

CVE-2021-22914 HIGH

Citrix Cloud Connector <6.31.0.62192 - Info Disclosure

CVE-2021-28815 MEDIUM

QNAP myQNAPcloud Link <2.2.21 - Info Disclosure

CVE-2021-25406 MEDIUM

Gear S Plugin <2.2.05.20122441 - Info Disclosure

CVE-2021-25404 LOW

SmartThings <1.7.64.21 - Info Disclosure

CVE-2021-25402 LOW

Samsung Notes <4.2.04.27 - Info Disclosure

CVE-2021-20396 LOW

IBM QRadar Analyst Workflow App <1.18.0 - Info Disclosure

CVE-2021-20575 LOW

IBM Security Verify Access <20.07 - Info Disclosure

CVE-2021-20391 LOW

IBM QRadar User Behavior Analytics <4.1.0 - Info Disclosure

CVE-2021-28653 MEDIUM

Western Digital G-Technology ArmorLock NVMe SSD <1.4.1 - Info Discl...

CVE-2021-27170 CRITICAL

FiberHome HG6245D - Info Disclosure

CVE-2021-25776 HIGH

JetBrains TeamCity <2020.2 - Info Disclosure

CVE-2020-10368 LOW

Cypress/Broadcom Wireless Combo - Memory Read Access

CVE-2020-4809 LOW

IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information

CVE-2020-4805 LOW

IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information

CVE-2020-4803 LOW

IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information

CVE-2020-5008 MEDIUM

IBM DataPower Gateway 10.0.0.0-10.0.1.0 & 2018.4.1.0-2018.4.1.14 - Sensitive Info in GET Requests

CVE-2020-28911 MEDIUM

Nagios Fusion <4.1.8 - Info Disclosure

CVE-2020-4765 LOW

IBM Cloud Pak for Multicloud Management <2.3 - Info Disclosure

CVE-2020-4726 LOW

IBM Cloud APM <8.1.4 - Info Disclosure

CVE-2020-29603 MEDIUM

MantisBT < 2.24.4 - Authenticated Private Project Name Disclosure via manage_proj_edit_page.php

CVE-2020-4871 MEDIUM

IBM Planning Analytics 2.0 - Info Disclosure

CVE-2020-4674 MEDIUM

IBM Workload Automation 9.5 - Info Disclosure

CVE-2020-4673 MEDIUM

IBM Workload Automation 9.5 - Info Disclosure

CVE-2020-9202 MEDIUM

Huawei TE Mobile V600R006C10 V600R006C10SPC100 - Insecure Storage of Sensitive Information

Previous Page 13 of 15 Next

Details

Vulnerabilities 373

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy